Exam 350-401 topic 1 question 226 discussion

B is more appropriate because the sentence says dynamic continuous mapped" Match Host The ability to configure NAT to assign the same Host portion of an IP Address and only translate the Network prefix portion of the IP Address. Useful where you are using the host portion as a means to identify or number users uniquely. to me B is more appropriate. Because C could be aleatory

Correct Answer: C. Increase the NAT pool size to support 254 usable addresses. Explanation: This NAT config sets up dynamic NAT with route-map filtering. Here’s what’s happening: NAT Pool: ip nat pool Internet 10.10.10.1 10.10.10.100 defines a range of just 100 IPs. Access list + Route-map: The access list matches the entire 192.168.1.0/24 subnet (254 hosts). Mismatch Problem: You’ve got 254 internal hosts, but only 100 external IPs in the pool—some users won't get NATed if the pool runs out. Why the others are incorrect: A. NAT pools specify translated (public) addresses, not internal ranges. B. match-host isn't a NAT pool config—this is not relevant here. D. One-to-one NAT would require 254 public IPs—inefficient and unnecessary.

A. Incorrect, we need a public IP address in the external pool to access external networks. B. Incorrect, this will only work if the pool accommodates the entire host portion (192.168.1.1 - 192.168.1.253). D. Incorrect, this is static NAT, not dynamic NAT.

C is correct

C. Increase the NAT pool size to support 254 usable addresses. This ensures that there are enough addresses in the NAT pool to accommodate all users from the 192.168.1.0/24 network.

IMO It's B

Only C satisfies the complete statement : dynamic continuous mapped NAT for all users

The answer is C, as continuous mapping means it has no 'insufficient ip pool' situation. Why not B, match-host type means 192.168.1.x will be mapped to 10.10.10.x, host is exactly the same. Now the ip pool is not big enough to map all inside IPs.

C is correct. for ALL users. /24 ... need to increase pool size more than just the 100.

The question is very correct in itself nothing missing or misleading. The NAT Pool Internet is using a netmask of /24, however, the range configured for users is .1 to .100, barely 100 users out of 254 useable inside global address (10.10.10.0/24). Again, the user subnet is also using a netmask of /24 (from the inverse of the Users' access-list. The configuration as it is, is already performing a dynamic continuous mapped NAT for all users but will not be efficient if 254 users (192.168.1.0/24) want to access the internet at the same time. So, it is expedient that we increase the NAT pool size to support 254 usable addresses, otherwise we might be wasting it and at the same not performing optimally.

C is the coorect answer for me

We are missing the Output of the POOL configuration for NAT That Pool Configuration must not have a range of 254 IP Address in the Public IP Pool it might be something like: ip nat pool 209.0.5.0 209.0.5.128 netmask 255.255.255.128 If this was in the Output shown then yes 100% the answer would be C I am sure this won't be a problem in the exam and we will select the correct answer.

Again i feel like we are missing more information on the question, if maybe at the top would of said there are less than 220 users in the environment then yea the obvious answer would of been C but we don't have enough info, these type of questions won't come out in the exam because of how lack of information it has.

i think it's the right answer

>NAT for all users do you have any idea how many users are on the LAN? NO? me too ... based on the provided ACL we can guess that about ~254, so we need to increase NAT size if we need NAT FOR ALL users, right? here is the description match-host feature probably together they would work better https://ccie4all.wordpress.com/2013/01/12/nat-with-match-host-keyword/ I mean 1) increase pool 2) configure match-host cisco_R2(config)#$ Internet 10.0.0.1 10.0.0.10 netmask 255.255.255.0 type ? match-host Keep host numbers the same after translation rotary Rotary address pool cisco_R2(config)#

i think it's the right answer

C makes more sense